PT-2017-12365 · Ytnef+1 · Ytnef+1

Published

2017-08-02

Updated

2019-10-03

CVE-2017-12144

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions ytnef version 1.9.2

Description The issue is related to an allocation failure in the TNEFFillMapi function in ytnef.c, which can be exploited by attackers to cause a denial of service via a crafted file.

Recommendations For ytnef version 1.9.2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

ALT-PU-2018-2051

CVE-2017-12144

Affected Products

Alt Linux

Ytnef

PT-2017-12365 · Ytnef+1 · Ytnef+1

CVE-2017-12144

Weakness Enumeration

Related Identifiers

Affected Products

References · 29